I am connected but none of my programs seem to be able to access the internet.

In order to complete the connection process you must bring up a web browser. The browser will then be automatically redirected to NMT's wireless login page. Enter your Banner ID and Password to finish the connection process.

How do I see what wireless channels are available?

Under Windows XP if the wireless networking card is enabled windows will scan the area looking for wireless networks. When Windows finds a network that it can connect to a message box will be displayed.

Click on the message box and a new window will appear

and from this window you can pick one of the wireless networks to connect and use.

What wireless channels can be used to connect ?

In the wireless setup there are two different channels that can be used:

How do I log into the unencrypted channel?

The NMT-UNENCRYPTED-WEB-LOGIN is an unencrypted channel which will work with just about any client computer and operating system combination. This channel should be used with caution because anyone could monitor what you view and do over that channel if isn't specifically encrypted between the client computer and the serve (ex https, ssh).

To login and use the NMT-UNENCRYPTED-WEB-LOGIN you just have to open a web browser and wait for the login page. The login page currently looks like:

The Username is the your Banner ID and the Password is the same password used to access Banweb. The web login page is encrypted via SSL which will prevent people from being able to casually steal the passwords used in the login process.

How do I connect to the encrypted channel?

The NMT-ENCRYPTED-WPA-WPA2* is considerably more secure than the unencrypted channel, but is much more complicated. Currently it supports several different modes of operation. The table below is a summary of the different modes available.

PEAP, MS-CHAPv2

Click on the authentication tab and select protected-EAP (PEAP) and then click properties.

A new dialog will open as shown. Click on the configure button.

Another new dialog will open as shown and you must remove the check box on this dialog.

Click ok, and the window will close.

Click ok on the window shown:

Click ok on the window shown in

Click ok on the window shown in:

Wait until the a message appears by the task bar as shown in:

Click on the message and a new window will open:

In this window enter the bannerID as the username, the banner Password as the password, and leave the domain information blank and then click ok.

If this is the first time that you are connecting to the encrypted network another message will appear as shown in.

Click on the message box and a new dialog will appear as shown in:

This dialog is informing you that the certificate authority which signed the SSL certificate used by the authentication server is signed by Thawte. Press ok to continue with the authentication.

Once the authentication has finished windows will display another message by the task bar as shown in:

what the signal strength is and that you have connected to the NMT-ENCRYPTED-WPA-WPA2 wireless ssid. Once this has been displayed you can use the wireless system to browse the web and access email like you can in the dorm rooms.

EAP-TTLS, PAP

On the authentication tab in the box for EAP-Type select SecureW2 and then click the Properties button.

A new dialog box will appear, click the configure button.

On the connection tab uncheck the box that says "Use alternate outer identity" and check the box for "Enable session resumption".

On the certificates tab, click the check box to verify server certificate and then click the button "Add CA". In the dialog that appears find and select the "Thawte Premium Server CA" and then click OK. Once these steps are done it should match.

On the Authentication tab select PAP.

On the User account tab have the "Prompt user for credentials" checked until the connection has been shown to work.

Then click OK. Now click OK on the SecureW2 window as shown in:

Click OK on the following window:

Now click OK on the window shown in:

After a little bit Windows should display a message by the task bar:

and now click the message box.

A new dialog will appear as shown:

For the Username enter your bannerID and for the password enter your banner password. Leave the Domain field blank.

Once that is done windows will display another message:

and you can now use the wireless connection to check email and browse the web like you would in the dorm rooms.

How do I switch to using the built in windows wireless utility?

You would like to switch from using the card manager utilities that came with your wireless network to the built in Windows utilities. To change this perform the following steps.

Click on the My Computer icon on the desktop. Now click the right mouse button (or left mouse button for left handed mice) and a menu should appear. Click on the Manage item in the menu. A new window will appear. In this window on the left hand side select "Services and Applications" and the submenu Services. On the right hand side scroll down and find the item named "Wireless Zero Configuration" as pictured in:

.

Double click on the "Wireless Zero Configuration" item and a new window will open.
Make sure the settings for startup match what is shown below:

Now click on the "My Network Places" icon on the desktop and click the right mouse button (or left mouse button for left handed mice) and a menu should appear. Click on properties and a new window will open up. Now select the wireless network connection and click the right mouse button (or left mouse button for left handed mice) and a menu should appear. Click on the properties item and a new window will open up. On this new window click on the "Wireless Networks" tab and make sure the check box at the top is clicked as shown in the picture:

What authentication system is directly built into windows ?

PEAP, MS-CHAPv2

What Windows versions can be used with the encryption types?

Operating System

Encryption Type

Windows 2000 SP4

Windows 2000 SP4 can only use WPA and the wireless card supplicant must perform the operations necessary to support it. Windows 2000 lacks many key parts necessary to make it easy to support the encrypted channels and will need the patch at: http://support.microsoft.com/kb/313664 to be able to support 802.1x

Windows XP SP2 can support WPA-TKIP, WPA-AES, WPA2-TKIP*, WPA2-AES*, but only with the patch located at: http://support.microsoft.com/?id=893357*WPA2 can only be used if you network card supports it.

What authentication systems can be used in Windows ?

PEAP with MS-CHAPv2 is built directly into windows. To support EAP-TTLS windows will need additional software and we have found that SecureW2 (located at: http://www.securew2.com/uk/) is a very well done client.

Troubleshooting the wireless connection.

In a weak signal area the authentication system seems to stall out and when you move to a place with better signal it still will not let you in.
This problem is caused by stale session that has not been cleared on the wireless system. When you move to the new location the wireless system still sees the old session and it won't authenticate until the old session has been cleared. To clear the old session you can disable the wireless network interface for ten minutes and then try again.

After disabling the wireless network interface to clear out a stale session and then trying again it still doesn't work.
This problem is caused by your drivers not actually turning the radio of the wireless network card off. Try turning the computer off for ten minutes and then try again.

It is hard to connect to any of the wireless system even when you appear to have good signal quality.
This problems to seems to be most often associated with older drivers. Get the latest drivers that are available for your wireless card. Make sure that you are using Windows XP SP1 with http://support.microsoft.com/?kbid=815485 patch applied or Windows XP SP2 http://support.microsoft.com/?id=893357 patch applied if you are trying to use the encrypted networks. Double check the driver options of your network card and verify that it is set to auto for any properties that can do auto.

When using the encrypted network it seems to take a long time to first process the authentication before logging onto the network.
This is not exactly a problem. This slow authentication is caused by the wireless system negotiating an encryption key when you first access the system. If windows has not been rebooted after such a negotiation, the authentication will be faster.

You just changed your banner password and the new password doesn't work.
The wireless runs updates to get the new password information on a regular schedule, but it isn't instantaneous, try logging in again in about 15 minutes.

Your wireless card says that it supports WPA2 but you cannot select that for an authentication type.

Make sure that you have Windows XP SP2 because WPA2 only works with Windows XP SP2 and you must install this http://support.microsoft.com/?id=893357 to get it to be available. Also make sure that you have the most recent version of your network drivers installed.

Problems most often found when using Windows and PEAP with MS-CHAPv2:

Password was entered incorrectly or you recently changed your password and you cannot get windows to prompt you to enter the password again.
The windows system will store the password associated with a wireless system no matter what. The only way to get windows to re-prompt for the password is to delete the wireless profile and then click ok.

You then have to go through the steps of adding the wireless profile.

Problems most often found when using EAP-TTLS and PAP with the SecureW2 client:

You recently changed you password and have SecureW2 set to cache your password, but it won't prompt you for a new password and the authentication system fails.
Open up the network card properties and select the properties of the NMT-ENCRYPTED-WPA-WPA2 wireless network.

Once that opens select the Authentication tab and click the properties button below EAP type:

Click the configure button on the dialog that opens up:

and move to the user account tab:

Once there click the check box to prompt for user credentials. Click OK a few times to close the dialogs and then try again.

Known Working Wireless Cards

This is a list of cards that we have tested and have proven to work. NOTE: This is merely a list of cards that have been tested but other cards may still be used.

ORiNOCO 11a/b/g ComboCard

Supports WPA with AES or TKIP

Supports the unencrypted web authentication

Works well and has good range

Linksys Wireless-G Notebook Adapter

Supports WPA with AES or TKIP

Supports WPA2** with AES or TKIP

Supports the unencrypted web authentication

Works well, but the drivers on the CD are old. Download the newest drivers from the web site.

Don't install the card manager software, just install the driver for the card.

Lucent ORiNOCO Gold

Supports the unencrypted web authentication

Works well and gets good reception, but doesn't work with encrypted channel

Intel Centrino Laptops*

Supports WPA with AES or TKIP

Supports WPA2** with AES or TKIP

Supports the encrypted web authentication

Gets great reception, but it is vital that the most recent drivers are installed and working

Card manager software only seems to work with the EAP-TTLS and PAP system, but it also works well with windows managing the wireless network setup.

*It is important that you have latest wireless drivers for your Intel Centrino Laptop**WPA2 can only be used if you network card supports it.